Nokia has admitted that the security flaws exposed by Adam Gowdiak of Security Explorations are genuine, and that a miscreant exploiting them could do whatever they like to a Series 40 phone just by knowing the phone number.
Gowdiak posted some details earlier this month, with claims that by exploiting the flaws he could …

Nokia, nokia. Foot shot, toes bleed.

- Nokia has been a week or two getting back to us, but this morning admitted that they have "been investigating the allegations made, using our normal processes and comprehensive testing... We can confirm that both claims are valid in some of our products."

Comprehensive testing? I think we can all see the flaw in this argument.

Incidentally, I did a little hunting for the fella who found the flaw on the web. Once I saw his previous in this area, I was convinced he wouldn't lie about it. Why were the staffers so cynical? Did you _really_ think Nokia would have found this in testing? Come on.

Guessing the vector

Adam has excluded WAP push as the vector. MMS is then the next likely suspect. This begs the question if a virus / worm could use the vector as a replicator. The network meltdown caused by 100M+ infected client devices would be one of biblical proportions.